DNS Gurus
Open Cached · just now
77/100 SECURITY SCORE

Certificate Information

Subject
CN=hearts.yocto.ca
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 25, 2025
Valid Until
February 23, 2026 78 days
Public Key
RSA 2048 bit Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9E:AA:00:4D:E4:9A:05:32:C6:27:8A:6A:01:E1:7C:B4:2C:75:BF:68:1F:4D:F0:0B:28:F7:AB:09:D3:9E:70:11
Alternative Names
100 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains
sinepsy.com

Other domains in certificate

emergencyalerts.massey.ac.nz
dev.agent.aeroglobe.pk
www.ah-2.com
link.ai-create.net
aparca.com.co
avitoparse.ru
bestellen.avondwinkeloranje.nl
media.behafizh.com
bufetequindosysaavedra.com
bussin.net
go.candylabs.de
stripe.centrulminerva.ro
apps.ddangkongschool.com
app.depthfirstcoding.com
trackway.dibarto.nl
event-finder.diligently.pl
doublebooks.com
www.edeng.dev
emojiwallpaper.11010011.xyz
landing.equosnine.com
escribaniabenitezfiliaci.com.ar
www.ezboxmedia.com
farnhamanddistrictwindowcleaning.uk
staging-www.fewlsy.com
fod.live
smartspace.gentrop.com
seller.goeatnow.co.uk
blog.gokmengoksel.com
hansoloconsole.com
ibnsinaholdings.com
idtconsultancy.com
london.imacoco.world
imcaz.co.uk
www.inquiry.online
mykola-viktoriia.invito.link
chat.itziks.com
www.jscimoveis.com
www.judithpiano.co.uk
develop.pet-connect.karottenkameraden.de
kento-harikyu.net
kidsworldrecords.com
auth.kontaktlinsen-preisvergleich.de
link.lawconnect.com
lenkoff72.ru
www.lior.lol
developers.looker.com
markmiska.sk
martelliengineering.it
cop.mdr.net
mezbaanbistro.ca
www.motive-force.com
www.multa.cc
sandboxv2.backend.mycosense.app
www.neckerbauder.de
sputnik.reach.net.nz
www.nobuco.at
deepdive-demo.oceansai.tech
ohcarechile.com
www.oliverv.xyz
www.ostraca.fr
pastoreli.com.br
peluqueriacanessa.com
personal-scorecard.com
www.peruhack.org
www.pick.io
playpocketpoker.com
pradco.in
pratyu.sh
www.promatiq.com.au
www.pswac.org
app.psychicsource.com
dev.pulscreen.com
vw-commercial-quiz.road.travel
www.scorepro.golf
ingress.screencastify.com
www.sebastiangamonal.cl
securius.tech
www.skibarneklinikk.no
www.sophiefuji.com
admin.souler.com
php-the21.spwn.jp
sqout.net
int.superfit.ai
surajitg.dev
tavolarasportingclub.it
technakriti.com
www.testograph.com
www.textspeakpro.com
thepostroster.com
app.thumbnailai.net
payroll.tidalforce.org
ambev.insights.umanni.com.br
www.uueauclaire.com
www.uxinkc.com
staging.williswelby.net
hearts.yocto.ca
yorgos.co
bads.zone.id
zorzolileonel.com.ar